py-stripe: updated to 14.4.0
14.4.0
Allow AIOHTTPClient to accept user-provided session or connector.
Update generated code
Add support for new resources reserve.Hold, reserve.Plan, and reserve.Release
Add support for location and reader on Charge.PaymentMethodDetail.CardPresent, Charge.PaymentMethodDetail.InteracPresent, ConfirmationToken.PaymentMethodPreview.Card.GeneratedFrom.PaymentMethodDetail.CardPresent, PaymentAttemptRecord.PaymentMethodDetail.CardPresent, PaymentAttemptRecord.PaymentMethodDetail.InteracPresent, PaymentMethod.Card.GeneratedFrom.PaymentMethodDetail.CardPresent, PaymentRecord.PaymentMethodDetail.CardPresent, and PaymentRecord.PaymentMethodDetail.InteracPresent
Add support for new value lk_vat on enums Checkout.Session.CustomerDetail.TaxId.type, Invoice.CustomerTaxId.type, Tax.Calculation.CustomerDetail.TaxId.type, Tax.Transaction.CustomerDetail.TaxId.type, and TaxId.type
Add support for new value lk_vat on enums CustomerCreateParamsTaxIdDatum.type, CustomerCreateTaxIdParams.type, InvoiceCreatePreviewParamsCustomerDetailTaxId.type, TaxIdCreateParams.type, and tax.CalculationCreateParamsCustomerDetailTaxId.type
Add support for new values reserve.hold.created, reserve.hold.updated, reserve.plan.created, reserve.plan.disabled, reserve.plan.expired, reserve.plan.updated, and reserve.release.created on enum Event.type
Add support for new values terminal_wifi_certificate and terminal_wifi_private_key on enums File.purpose and FileListParams.purpose
Add support for new values terminal_wifi_certificate and terminal_wifi_private_key on enum FileCreateParams.purpose
Add support for new value pay_by_bank on enums Invoice.PaymentSetting.payment_method_types, InvoiceCreateParamsPaymentSetting.payment_method_types, InvoiceModifyParamsPaymentSetting.payment_method_types, Subscription.PaymentSetting.payment_method_types, SubscriptionCreateParamsPaymentSetting.payment_method_types, and SubscriptionModifyParamsPaymentSetting.payment_method_types
Add support for display_name and service_user_number on Mandate.PaymentMethodDetail.BacsDebit
Change type of PaymentAttemptRecord.PaymentMethodDetail.Boleto.tax_id and PaymentRecord.PaymentMethodDetail.Boleto.tax_id from string to nullable(string)
Change type of PaymentAttemptRecord.PaymentMethodDetail.UsBankAccount.expected_debit_date and PaymentRecord.PaymentMethodDetail.UsBankAccount.expected_debit_date from nullable(string) to string
Add support for transaction_purpose on PaymentIntent.PaymentMethodOption.UsBankAccount, PaymentIntentConfirmParamsPaymentMethodOptionUsBankAccount, PaymentIntentCreateParamsPaymentMethodOptionUsBankAccount, and PaymentIntentModifyParamsPaymentMethodOptionUsBankAccount
Add support for optional_items on PaymentLinkModifyParams
[12 lines not shown]
patchutils: updated to 0.4.5
0.4.5 (stable)
Reverted incompatible behavior change from version 0.4.4. In 0.4.4,
Git diffs without content hunks (renames, copies, mode-only changes,
binary files) were included in output and file numbering, breaking
compatibility with 0.4.3 and earlier versions. This caused file numbers
to change for scripts using -N/-F options. The 0.4.3 behavior has been
restored as the default: these diffs are now excluded from output and
numbering. Added --git-extended-diffs option to control this behavior:
use --git-extended-diffs=include to get the 0.4.4 behavior if needed.
The default will change to 'include' in version 0.5.0 for modern Git
workflow support.
Fixed grepdiff -s/--status to display correct file status indicators.
Previously, grepdiff -s incorrectly showed '!' (modification) for all
matching files regardless of whether they were additions, deletions,
or modifications. Now correctly shows '+' for file additions, '-' for
[32 lines not shown]
nodejs: updated to 25.7.0
25.7.0 (Current)
Notable Changes
- (SEMVER-MINOR) http2: add http1Options for HTTP/1 fallback configuration (Amol Yadav)
- (SEMVER-MINOR) sea: support ESM entry point in SEA (Joyee Cheung)
- sqlite: mark as release candidate (Matteo Collina)
- (SEMVER-MINOR) stream: rename Duplex.toWeb() type option to readableType (René)
- (SEMVER-MINOR) test_runner: show interrupted test on SIGINT (Matteo Collina)
sysutils/salt: fix two crashes starting salt_master on NetBSD
The patch for salt/grains/core.py avoids accessing an undefined element
of the grains dictionary, on both NetBSD and OpenBSD. This matches the
corresponding code for FreeBSD.
The patch for salt/utils/network.py restricts the OS version test to the
part before "_" on NetBSD; this could raise an exception if py-packaging
wasn't aware of the suffix (e.g., "BETA" would work but "STABLE" not).
Bumps PKGREVISION.
Tested on NetBSD/amd64.
ngtcp2: updated to 1.21.0
1.21.0
Revert "examples: Avoid strict aliasing violation"
Update doc
Fix Initial/Handshake packet construction
bbr: Rework spurious loss handling based on the latest draft
Assert that nwrite is not larger than the provided buffer length
ksl: Inline comparison functions
autotool: Do not check third-party libs and C++ flags with lib-only
More tests
log: Remove unused ngtcp2_log_tx_cancel
Remove ngtcp2_datagram.rdata
log: Add tests
Rename in6_addr to s6_addr
Simplify strpkttype
bbr: Add const qualifier
Simplify qlog_pkt_type
[5 lines not shown]
gnupg2: updated to 2.5.18
Noteworthy changes in version 2.5.18 (2026-02-24)
* gpg: Support deleting a composite secret key in gpg-agent.
* gpg: Fix armor parsing when no CRC is found.
* gpgsm: New option --assert-validsig.
* agent: Fix the recent regression in pkdecrypt with TPM RSA.
* scdaemon: Add support for D-Trust Card 6.1/6.4.
* dirmngr: Let KS_SEARCH print all uid records for a key.
Fixes regression since 2015.
* gpg-authcode-sign.sh: Keep the log file even on success.
postgresql1[4-8]: updated to 18.3, 17.9, 16.13, 15.17, 14.22
PostgreSQL 18.3, 17.9, 16.13, 15.17, and 14.22
Bug Fixes and Improvements
This update fixes several bugs that were reported since the previous release. The issues listed below affect PostgreSQL 18. Some of these issues may also affect other supported versions of PostgreSQL.
Fix issue where a standby would halt and return an error "could not access status of transaction".
Fix error where the substring() function would raise an error "invalid byte sequence for encoding" on non-ASCII text values if the source of that value is a database column. This was due to a change introduced for the fix to CVE-2026-2006.
Fix for the strict_word_similarity function in pg_trgm that could lead to incorrect output or crashes. This was due to an oversight in the fix for CVE-2026-2007.
Fix function volatility for json_strip_nulls() and jsonb_strip_nulls() to be immutable, like previous releases, allowing for them to be used in indexes. If you previously upgraded to PostgreSQL 18.0 through 18.2, see the additional steps in the "Updating" section.
Fix for NOT NULL tests in LATERAL UNION ALL subquery that could lead to wrong query output.
Avoid NOT NULL constraints from generating name conflicts with user-written constraints.
Fix pg_stat_get_backend_wait_event() and pg_stat_get_backend_wait_event_type() to report values for auxiliary processes, similar to pg_stat_activity.
Fix casting a composite-type variable to a domain type when returning its value from a PL/pgSQL function.
Fix the hstore binary input function to avoid crashes on input with duplicate keys.
wireshark: updated to 4.6.4
4.6.4
Bug Fixes
wnpa-sec-2026-05 USB HID dissector memory exhaustion. Issue 20972. CVE-2026-3201.
wnpa-sec-2026-06 NTS-KE dissector crash. Issue 21000. CVE-2026-3202.
wnpa-sec-2026-07 RF4CE Profile dissector crash. Issue 21009. CVE-2026-3203.
The following bugs have been fixed:
Wireshark doesn’t start if Npcap is configured with "Restrict Npcap driver’s Access to Administrators only" Issue 20828.
PQC signature algorithm not reported in signature_algorithms. Issue 20953.
Unexpected JA4 ALPN values when space characters sent. Issue 20966.
Expert Info seems to have quadratic performance (gets slower and slower) Issue 20970.
IKEv2 EMERGENCY_CALL_NUMBERS Notify payload cannot be decoded. Issue 20974.
TShark and editcap fails with segmentation fault when output format (-F) set to blf. Issue 20976.
Fuzz job crash: fuzz-2026-02-01-12944805400.pcap [Zigbee Direct Tunneling Zigbee NWK PDUs NULL hash table] Issue 20977.
Wiretap writes pcapng custom options with string values invalidly. Issue 20978.
RDM status in Output Status (GoodOutputB) field incorrectly decoded in Art-Net PollReply dissector. Issue 20980.
[6 lines not shown]
chat/matrix-synapse: Rotorill comments about upstream dependency management
- setuptools_rust (not actually needed)
- pyrsistent (jsonschema used to use it, but synapse fails to start
without it)
Despite the big diff, this is a comment-only change.
security/stunnel: Update to 5.77
Changelog:
### Version 5.77, 2026.02.17, urgency: MEDIUM
* Security bugfixes
- OpenSSL DLLs updated to version 3.5.5.
* Bugfixes
- Avoid attempting to fetch OCSP stapling for PSK-only
configuration sections.
* Features
- Merged applicable patches from Fedora and Debian:
- Use SOURCE_DATE_EPOCH for reproducible builds.
- Skip the OpenSSL version check when AUTOPKGTEST_TMP is set.
- Enable PrivateTmp in the stunnel.service template.
- Clarify the manual page for the "curves" option.
- Log client IP addresses on TLS errors.
### Version 5.76, 2025.10.18, urgency: MEDIUM
* Security bugfixes
[14 lines not shown]
hugo: Update to 0.157.0
upstream changes:
-----------------
v0.157.0
The notable new feature is GitInfo support for Hugo Modules. See this repo for a runnable demo where multiple versions of the same content is mounted into different versions.
Bug fixes
* Fix menu pageRef resolution in multidimensional setups 3dff7c8 @bep #14566
* docs: Regen and fix the imaging docshelper output 8e28668 @bep #14562
* hugolib: Fix automatic section pages not replaced by sites.complements a18bec1 @bep #14540
Improvements
* Handle GitInfo for modules where Origin is not set when running go list d98cd4a @bep #14564
* commands: Update link to highlighting style examples 6805997 @jmooring #14556
* Add AVIF, HEIF and HEIC partial support (only metadata for now) 49bfb10 @bep #14549
* resources/images: Adjust WebP processing defaults b7203bb @jmooring
* Add Page.GitInfo support for content from Git modules dfece5b @bep #14431 #5533
* Add per-request timeout option to resources.GetRemote 2d691c7 @vanbroup
* Update AI Watchdog action version in workflow b96d58a @bep
* config: Skip taxonomy entries with empty keys or values 65b4287 @bep #14550
[5 lines not shown]